A Certificate Authority (CA) is a trusted entity that stores, signs, and issues digital TLS/SSL certificates. Certificates verify the ownership of a public key by the named subject of the certificate.
Download a CSV of approved certificate authorities: Certificate Authorities (ver. 10-JAN-2026). See changes.txt.
See the best practices or learn more about the TLS/SSL Certificates and TLS/SSL Configurations risk vectors.
Identifying Certificate Authorities
Refer to the certificate issuer field (issuer_name) to identify the CA. The CA details are made up of the following attribute assertion values:
-
C= 2-letter ISO Country Code -
ST= State/Province -
L= Locality -
O= Organization Name -
OU= Country or Region -
CN= Common Name
API Data
issuerNameThe distinguished name of the certificate issuer, made up of attribute assertion values.
startsubjectNameThe distinguished name of the owner of the first certificate in a certificate chain, made up of attribute assertion values.
subjectNameThe distinguished name of the owner of the certificate, made up of attribute assertion values.
-
January 10, 2026: Refreshed
certificate-authorities.csvand attachedchanges.txt. -
July 21, 2025: Refreshed
certificate-authorities.csvand attachedchanges.txt. -
December 16, 2024: Manually added
US,,,SSL Corporation,,,,,SSL.com TLS RSA Root CA 2022,,,6FBEDAAD73BD0840E28B4DBED4F75B91to CA list. - December 2, 2024: Certificate authority details.
Feedback
0 comments
Please sign in to leave a comment.